Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1087d0-04ab-4b65-b786-8fcb2ce7d6b9/1/vWo6dh8F0_tQrRFz25xyECROF8c.roa
File: vWo6dh8F0_tQrRFz25xyECROF8c.roa (raw, json)
Hash identifier: 9wEDdff7qsbL4qsDpd+aCIQyY0vyX+G9s1eIwqZl5T4=
Subject key identifier: BD:6A:3A:76:1F:05:D3:FB:50:AD:11:73:DB:9C:72:10:24:4E:17:C7
Certificate issuer: /CN=176ded804d7511b4728ca3cc8b1cb7352711abe6
Certificate serial: 025390
Authority key identifier: 17:6D:ED:80:4D:75:11:B4:72:8C:A3:CC:8B:1C:B7:35:27:11:AB:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F23tgE11EbRyjKPMixy3NScRq-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1087d0-04ab-4b65-b786-8fcb2ce7d6b9/1/vWo6dh8F0_tQrRFz25xyECROF8c.roa
Signing time: Mon 31 Jan 2022 15:53:51 +0000
ROA not before: Mon 31 Jan 2022 15:53:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 185.128.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152464 (0x25390)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=176ded804d7511b4728ca3cc8b1cb7352711abe6
Validity
Not Before: Jan 31 15:53:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd6a3a761f05d3fb50ad1173db9c7210244e17c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:72:bd:26:86:71:5e:0c:37:e8:0b:d8:05:28:
73:d5:f7:66:2d:82:82:d9:20:bb:ac:68:93:a7:5a:
5d:ef:47:af:d4:2e:27:2c:2b:62:73:50:c9:21:24:
99:b1:8c:9b:6d:35:c5:f2:fa:34:91:7d:63:c9:40:
89:3c:db:e0:0e:11:f4:9a:2a:fd:c3:53:5e:96:9e:
80:af:8e:f3:e0:c4:43:0e:06:ee:cf:dc:25:f7:c8:
01:b7:3d:af:74:5e:8c:32:cf:3c:bc:b1:00:35:31:
7e:c1:00:89:ca:38:5a:53:71:e9:88:6b:a0:0f:a7:
de:0c:2b:65:60:d2:9f:d1:b7:db:c5:f1:15:21:6d:
d3:e3:92:de:1d:8c:4b:06:c0:18:e0:a5:60:4a:94:
86:3d:b5:e7:19:2d:38:9a:f2:fc:03:94:fc:80:7f:
fa:1a:47:4b:ac:57:a9:af:64:03:26:c8:ea:80:64:
da:26:98:a0:1f:c1:08:9e:3c:86:42:4d:3b:8f:9a:
7d:70:30:7e:7d:2b:97:25:97:ed:05:19:0f:54:a4:
e0:ef:7e:f5:da:27:43:fd:07:d3:30:8a:70:67:d7:
b7:5b:41:88:7d:fd:fd:b0:96:5b:00:0c:7d:68:05:
80:3f:79:41:b4:5f:3c:27:d9:a9:f6:09:47:47:50:
ce:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:6A:3A:76:1F:05:D3:FB:50:AD:11:73:DB:9C:72:10:24:4E:17:C7
X509v3 Authority Key Identifier:
keyid:17:6D:ED:80:4D:75:11:B4:72:8C:A3:CC:8B:1C:B7:35:27:11:AB:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F23tgE11EbRyjKPMixy3NScRq-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1087d0-04ab-4b65-b786-8fcb2ce7d6b9/1/vWo6dh8F0_tQrRFz25xyECROF8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1087d0-04ab-4b65-b786-8fcb2ce7d6b9/1/F23tgE11EbRyjKPMixy3NScRq-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.224.0/24
Signature Algorithm: sha256WithRSAEncryption
17:6b:82:8d:59:06:52:6b:34:8f:ce:88:59:44:ca:3b:a0:1e:
3d:ab:1b:97:6d:47:20:02:fe:03:ff:eb:64:5d:8a:5d:1d:5a:
97:db:e2:3c:9f:71:fd:0f:ae:78:b7:7f:a5:e6:6c:bd:42:a4:
3f:48:f1:fe:ee:5b:0c:32:ac:56:1d:d5:e2:ea:84:4f:b1:8c:
d3:3a:b8:58:9e:4a:40:13:d5:7b:f2:3a:61:c8:01:c1:64:63:
d9:94:31:6f:1e:cc:67:88:bd:1d:b3:a3:3e:58:8b:8c:42:a4:
a4:2b:d7:d0:db:c4:b0:e1:41:04:0b:ab:5b:e2:84:89:d0:0c:
23:2b:ed:6a:03:5d:08:ec:53:64:bc:37:96:8f:e7:18:d6:46:
01:22:1a:5d:1b:c5:d8:a9:f9:69:81:b9:76:b0:60:d1:0d:c2:
cc:ea:3f:d5:e6:75:1f:64:c4:33:e0:f1:b9:82:b1:1f:f9:be:
ce:4a:23:db:3e:f6:24:81:9a:ee:81:a0:c6:71:71:44:b4:2e:
f7:4f:81:13:a9:0e:85:45:6e:56:ac:2e:45:ab:70:ee:8b:83:
de:32:8c:a3:bb:1d:60:ff:93:23:95:53:39:ee:56:37:42:ec:
06:05:82:2a:f7:14:d9:8c:b6:fd:a3:75:72:cd:b0:bb:d5:ec:
88:e3:b5:47
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAlOQMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDE3
NmRlZDgwNGQ3NTExYjQ3MjhjYTNjYzhiMWNiNzM1MjcxMWFiZTYwHhcNMjIwMTMx
MTU1MzUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiZDZhM2E3NjFmMDVk
M2ZiNTBhZDExNzNkYjljNzIxMDI0NGUxN2M3MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA2XK9JoZxXgw36AvYBShz1fdmLYKC2SC7rGiTp1pd70ev1C4n
LCtic1DJISSZsYybbTXF8vo0kX1jyUCJPNvgDhH0mir9w1Nelp6Ar47z4MRDDgbu
z9wl98gBtz2vdF6MMs88vLEANTF+wQCJyjhaU3HpiGugD6feDCtlYNKf0bfbxfEV
IW3T45LeHYxLBsAY4KVgSpSGPbXnGS04mvL8A5T8gH/6GkdLrFepr2QDJsjqgGTa
JpigH8EInjyGQk07j5p9cDB+fSuXJZftBRkPVKTg73712idD/QfTMIpwZ9e3W0GI
ff39sJZbAAx9aAWAP3lBtF88J9mp9glHR1DOJwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFL1qOnYfBdP7UK0Rc9ucchAkThfHMB8GA1UdIwQYMBaAFBdt7YBNdRG0coyj
zIsctzUnEavmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
RjIzdGdFMTFFYlJ5aktQTWl4eTNOU2NScS1ZLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8yZi8xMDg3ZDAtMDRhYi00YjY1LWI3ODYtOGZjYjJjZTdkNmI5LzEv
dldvNmRoOEYwX3RRclJGejI1eHlFQ1JPRjhjLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8x
MDg3ZDAtMDRhYi00YjY1LWI3ODYtOGZjYjJjZTdkNmI5LzEvRjIzdGdFMTFFYlJ5
aktQTWl4eTNOU2NScS1ZLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYDgMA0GCSqGSIb3DQEBCwUAA4IB
AQAXa4KNWQZSazSPzohZRMo7oB49qxuXbUcgAv4D/+tkXYpdHVqX2+I8n3H9D654
t3+l5my9QqQ/SPH+7lsMMqxWHdXi6oRPsYzTOrhYnkpAE9V78jphyAHBZGPZlDFv
HsxniL0ds6M+WIuMQqSkK9fQ28Sw4UEEC6tb4oSJ0AwjK+1qA10I7FNkvDeWj+cY
1kYBIhpdG8XYqflpgbl2sGDRDcLM6j/V5nUfZMQz4PG5grEf+b7OSiPbPvYkgZru
gaDGcXFEtC73T4ETqQ6FRW5WrC5Fq3Dui4PeMoyjux1g/5MjlVM57lY3QuwGBYIq
9xTZjLb9o3VyzbC71eyI47VH
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:47 2023 by rpki-client on console-ams.rpki-client.org